CSIDS Exam Cram 2 (Exam 642-531)
| [ LiB ] |
-
You can access the command-line interface (CLI) by using the console port, Telnet and SSH to the command and control interface, or a direct monitor and keyboard ports on most models. However, the IDS-4215 does not have monitor and keyboard ports.
-
The IDS 4.0 supports SSH versions 1 and 2 protocols.
-
CLI locations:
Syntax
Location
Sensor#
Privilege exec
Sensor(config)#
Global configuration
Sensor(config-if)#
Command and control interface
Sensor(config-ifs)#
Sensing interface
Sensor(config-ifg)#
Interface group
Sensor(config-Host-net)#
NetworkParams configuration
-
The NetworkParams configures several sensor networking settings, such as IP address, default gateway, hostname, and access list.
-
The interface command-control mode enables you to configure an IP address for the sensor.
-
The NetworkAccess service allows the configuration of managed devices; it has the prompt sensor(config-NetworkAccess)# .
-
Configuring a managed device:
-
Set the VTY line password (Telnet).
-
Set the enable password. (Make it the same as the VTY line.)
-
Enable Telnet on the device.
-
Add the sensor to the trusted host list on the device.
-
-
WebServer Service that allows the configuration of the HTTP/HTTPS cidwebServer application. The command prompt is sensor(config-WebServer)# .
-
Virtual-sensor-configuration Level that allows you to fine-tune signature settings or even create custom signatures. The command prompt is sensor(config-vsc)# .
-
All signature tuning and custom signatures created are linked to this virtualSensor group.
-
To reset String.TCP settings back to default, use sensor(config-vsc)# reset-signature STRING.TCP all at the virtual-sensor-configuration level.
-
| [ LiB ] |